Home Vulnerabilities Scammers offer streaming services, giveaways and a fake cyber currency to cash...

Scammers offer streaming services, giveaways and a fake cyber currency to cash in on the Olympic Games

Kaspersky’s analysis found that cybercriminals are getting extra creative with the latest campaigns designed to harvest credentials.


Image: iStock/Melpomenem

Kaspersky experts analyzed Olympic-related phishing attacks and found fake pages offering streaming services, tickets to events that won’t have spectators, and even a fake Olympic Games virtual currency.

Olga Svistunova, a security expert at Kaspersky, said that cybercriminals always use popular sports events as bait for their attacks. Security experts recommend that security teams recognize this standard tactic and incorporate an awareness of current events into threat monitoring. Even under the unusual circumstances of this year’s games, bad actors have found a way to use the event to their advantage.

“For example, this year, we discovered an interesting phishing page selling an ‘Olympic Games Official Token,'” Svistiunova said. “There is no real equivalent of such a thing, that means that cybercriminals are not only faking already existing baits but also coming up with their own new sophisticated ideas.”

Security experts found a website selling a virtual currency that is supposed to be a support fund for Olympic athletes. The lure is financial help for an athlete in need but there is no official Olympic token. The only person who benefits is the scammer. 

SEE: Tokyo 2020 Olympics must be extra secure to avoid cyberattacks and ransomware (TechRepublic) 

Kaspersky’s analysis found several creative ways scammers are taking advantage of the buzz around the Olympic Games.

Streaming services for watching the games

There are no spectators this year due to the coronavirus so watching the games online is the only way to see how the competitions turn out. Kaspersky experts found various phishing pages offering streaming services for the games. The trick is that users have to register to watch. Those registration pages are phishing schemes and, “once a user enters their credentials, they might be redirected to a page that distributes different malicious files,” according to Kaspersky. The scam is a double whammy, delivering malware and harvesting user credentials.  

Despite the fact that there will be no live audiences this year, fraudsters are still trying to sell tickets. Kaspersky experts also discovered pages offering refunds for already purchased tickets.

Credential harvesting campaigns

Kaspersky experts also found phishing pages disguised as official Olympic websites. Scammers looking to capitalize on interest in the Olympics create fake pages that look official and connected to the International Olympic Committee. The real goal, for at least some ciste according to Kaspersky, is to collect Microsoft Services credentials.

Free gift scams

The promise of free stuff is always a popular lure and Kaspersky experts found that kind of campaign using an Olympics theme. Phishing pages offering the chance to win a free TV for watching the games. The lucky winners only have to pay the delivery fee, which is pure profit for bad actors who obviously never send the prize.

Also see

Source link


New infosec products of the week: July 23, 2021

Stellar Cyber XDR Kill Chain allows security analyst teams to disrupt cyberattacks Stellar Cyber introduced a...

Kaseya Gets Universal Decryptor to Help REvil Ransomware Victims

Nearly three weeks after Florida-based software vendor Kaseya was hit by a widespread supply-chain ransomware attack, the company on Thursday said it obtained...

Kaseya obtains REvil decryptor, starts sharing it with afflicted customers • The Register

Software-for-services providers business Kaseya has obtained a "universal decryptor key" for the REvil ransomware and is delivering it to clients. A brief Thursday update...

Most Popular

‘Critical Severity’ Warning for Malware Embedded in Popular JavaScript Library

Security responders are scrambling this weekend to assess the damage from crypto-mining malware embedded in an npm package (JavaScript library) that counts close...

Popular NPM Package Hijacked to Publish Crypto-mining Malware

The U.S. Cybersecurity and Infrastructure Security Agency on Friday warned of crypto-mining malware embedded in "UAParser.js," a popular JavaScript NPM library with over...

Recent Comments